{"url":"http://public2.vulnerablecode.io/api/packages/8907?format=json","purl":"pkg:alpm/archlinux/firefox@71.0-1","type":"alpm","namespace":"archlinux","name":"firefox","version":"71.0-1","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"72.0.1-1","latest_non_vulnerable_version":"101.0-1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/177743?format=json","vulnerability_id":"VCID-4xup-j64d-v3h6","summary":"security update","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17016.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17016.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17016","reference_id":"","reference_type":"","scores":[{"value":"0.01798","scoring_system":"epss","scoring_elements":"0.83249","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01798","scoring_system":"epss","scoring_elements":"0.83187","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17016"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17016","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17016"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17017","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17017"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17022","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17022"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17024","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17024"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17026","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17026"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1788723","reference_id":"1788723","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1788723"},{"reference_url":"https://security.archlinux.org/ASA-202001-1","reference_id":"ASA-202001-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202001-1"},{"reference_url":"https://security.archlinux.org/ASA-202001-4","reference_id":"ASA-202001-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202001-4"},{"reference_url":"https://security.archlinux.org/AVG-1084","reference_id":"AVG-1084","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1084"},{"reference_url":"https://security.archlinux.org/AVG-1086","reference_id":"AVG-1086","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1086"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-01","reference_id":"mfsa2020-01","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-02","reference_id":"mfsa2020-02","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-02"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-04","reference_id":"mfsa2020-04","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0085","reference_id":"RHSA-2020:0085","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0085"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0086","reference_id":"RHSA-2020:0086","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0086"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0111","reference_id":"RHSA-2020:0111","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0111"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0120","reference_id":"RHSA-2020:0120","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0120"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0123","reference_id":"RHSA-2020:0123","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0123"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0127","reference_id":"RHSA-2020:0127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0127"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0292","reference_id":"RHSA-2020:0292","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0292"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0295","reference_id":"RHSA-2020:0295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0295"},{"reference_url":"https://usn.ubuntu.com/4234-1/","reference_id":"USN-4234-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4234-1/"},{"reference_url":"https://usn.ubuntu.com/4241-1/","reference_id":"USN-4241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8905?format=json","purl":"pkg:alpm/archlinux/firefox@72.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q4z-muc6-m7a8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@72.0-1"}],"aliases":["CVE-2019-17016"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4xup-j64d-v3h6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/177741?format=json","vulnerability_id":"VCID-6tma-11p7-bfg2","summary":"security update","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17017.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17017.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17017","reference_id":"","reference_type":"","scores":[{"value":"0.01768","scoring_system":"epss","scoring_elements":"0.83115","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01768","scoring_system":"epss","scoring_elements":"0.83053","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17017"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17016","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17016"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17017","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17017"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17022","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17022"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17024","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17024"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17026","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17026"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1788724","reference_id":"1788724","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1788724"},{"reference_url":"https://security.archlinux.org/ASA-202001-1","reference_id":"ASA-202001-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202001-1"},{"reference_url":"https://security.archlinux.org/ASA-202001-4","reference_id":"ASA-202001-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202001-4"},{"reference_url":"https://security.archlinux.org/AVG-1084","reference_id":"AVG-1084","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1084"},{"reference_url":"https://security.archlinux.org/AVG-1086","reference_id":"AVG-1086","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1086"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-01","reference_id":"mfsa2020-01","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-02","reference_id":"mfsa2020-02","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-02"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-04","reference_id":"mfsa2020-04","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0085","reference_id":"RHSA-2020:0085","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0085"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0086","reference_id":"RHSA-2020:0086","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0086"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0111","reference_id":"RHSA-2020:0111","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0111"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0120","reference_id":"RHSA-2020:0120","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0120"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0123","reference_id":"RHSA-2020:0123","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0123"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0127","reference_id":"RHSA-2020:0127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0127"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0292","reference_id":"RHSA-2020:0292","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0292"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0295","reference_id":"RHSA-2020:0295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0295"},{"reference_url":"https://usn.ubuntu.com/4234-1/","reference_id":"USN-4234-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4234-1/"},{"reference_url":"https://usn.ubuntu.com/4241-1/","reference_id":"USN-4241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8905?format=json","purl":"pkg:alpm/archlinux/firefox@72.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q4z-muc6-m7a8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@72.0-1"}],"aliases":["CVE-2019-17017"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6tma-11p7-bfg2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/177736?format=json","vulnerability_id":"VCID-dn29-b195-4kc7","summary":"security update","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17024.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17024.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17024","reference_id":"","reference_type":"","scores":[{"value":"0.0208","scoring_system":"epss","scoring_elements":"0.84404","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0208","scoring_system":"epss","scoring_elements":"0.84349","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17024"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17016","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17016"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17017","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17017"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17022","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17022"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17024","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17024"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17026","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17026"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1788727","reference_id":"1788727","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1788727"},{"reference_url":"https://security.archlinux.org/ASA-202001-1","reference_id":"ASA-202001-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202001-1"},{"reference_url":"https://security.archlinux.org/ASA-202001-4","reference_id":"ASA-202001-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202001-4"},{"reference_url":"https://security.archlinux.org/AVG-1084","reference_id":"AVG-1084","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1084"},{"reference_url":"https://security.archlinux.org/AVG-1086","reference_id":"AVG-1086","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1086"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-01","reference_id":"mfsa2020-01","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-02","reference_id":"mfsa2020-02","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-02"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-04","reference_id":"mfsa2020-04","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0085","reference_id":"RHSA-2020:0085","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0085"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0086","reference_id":"RHSA-2020:0086","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0086"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0111","reference_id":"RHSA-2020:0111","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0111"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0120","reference_id":"RHSA-2020:0120","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0120"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0123","reference_id":"RHSA-2020:0123","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0123"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0127","reference_id":"RHSA-2020:0127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0127"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0292","reference_id":"RHSA-2020:0292","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0292"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0295","reference_id":"RHSA-2020:0295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0295"},{"reference_url":"https://usn.ubuntu.com/4234-1/","reference_id":"USN-4234-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4234-1/"},{"reference_url":"https://usn.ubuntu.com/4241-1/","reference_id":"USN-4241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8905?format=json","purl":"pkg:alpm/archlinux/firefox@72.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q4z-muc6-m7a8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@72.0-1"}],"aliases":["CVE-2019-17024"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dn29-b195-4kc7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/186473?format=json","vulnerability_id":"VCID-fcbc-ub4t-zua6","summary":"security update","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17023.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17023.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17023","reference_id":"","reference_type":"","scores":[{"value":"0.00894","scoring_system":"epss","scoring_elements":"0.7604","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00894","scoring_system":"epss","scoring_elements":"0.76111","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17023"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17006","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17006"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17023","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17023"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12399","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12399"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12402","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12402"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1791225","reference_id":"1791225","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1791225"},{"reference_url":"https://security.archlinux.org/ASA-202001-1","reference_id":"ASA-202001-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202001-1"},{"reference_url":"https://security.archlinux.org/AVG-1084","reference_id":"AVG-1084","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1084"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-01","reference_id":"mfsa2020-01","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-01"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3280","reference_id":"RHSA-2020:3280","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3280"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4076","reference_id":"RHSA-2020:4076","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4076"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0949","reference_id":"RHSA-2021:0949","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0949"},{"reference_url":"https://usn.ubuntu.com/4234-1/","reference_id":"USN-4234-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4234-1/"},{"reference_url":"https://usn.ubuntu.com/4397-1/","reference_id":"USN-4397-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4397-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8905?format=json","purl":"pkg:alpm/archlinux/firefox@72.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q4z-muc6-m7a8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@72.0-1"}],"aliases":["CVE-2019-17023"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fcbc-ub4t-zua6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/196900?format=json","vulnerability_id":"VCID-fch6-wjz9-7qgc","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17025","reference_id":"","reference_type":"","scores":[{"value":"0.00704","scoring_system":"epss","scoring_elements":"0.72564","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00704","scoring_system":"epss","scoring_elements":"0.72641","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17025"},{"reference_url":"https://security.archlinux.org/ASA-202001-1","reference_id":"ASA-202001-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202001-1"},{"reference_url":"https://security.archlinux.org/AVG-1084","reference_id":"AVG-1084","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1084"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-01","reference_id":"mfsa2020-01","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-01"},{"reference_url":"https://usn.ubuntu.com/4234-1/","reference_id":"USN-4234-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4234-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8905?format=json","purl":"pkg:alpm/archlinux/firefox@72.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q4z-muc6-m7a8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@72.0-1"}],"aliases":["CVE-2019-17025"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fch6-wjz9-7qgc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/196901?format=json","vulnerability_id":"VCID-tq7s-6xrx-b3at","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17020.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17020.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17020","reference_id":"","reference_type":"","scores":[{"value":"0.00246","scoring_system":"epss","scoring_elements":"0.48126","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00246","scoring_system":"epss","scoring_elements":"0.48264","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17020"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1790800","reference_id":"1790800","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1790800"},{"reference_url":"https://security.archlinux.org/ASA-202001-1","reference_id":"ASA-202001-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202001-1"},{"reference_url":"https://security.archlinux.org/AVG-1084","reference_id":"AVG-1084","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1084"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-01","reference_id":"mfsa2020-01","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-01"},{"reference_url":"https://usn.ubuntu.com/4234-1/","reference_id":"USN-4234-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4234-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8905?format=json","purl":"pkg:alpm/archlinux/firefox@72.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q4z-muc6-m7a8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@72.0-1"}],"aliases":["CVE-2019-17020"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tq7s-6xrx-b3at"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/177739?format=json","vulnerability_id":"VCID-wh6x-a39q-5kh9","summary":"security update","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17022.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17022.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17022","reference_id":"","reference_type":"","scores":[{"value":"0.02423","scoring_system":"epss","scoring_elements":"0.85513","published_at":"2026-06-12T12:55:00Z"},{"value":"0.02423","scoring_system":"epss","scoring_elements":"0.85461","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17022"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17016","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17016"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17017","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17017"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17022","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17022"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17024","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17024"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17026","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17026"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1788726","reference_id":"1788726","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1788726"},{"reference_url":"https://security.archlinux.org/ASA-202001-1","reference_id":"ASA-202001-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202001-1"},{"reference_url":"https://security.archlinux.org/ASA-202001-4","reference_id":"ASA-202001-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202001-4"},{"reference_url":"https://security.archlinux.org/AVG-1084","reference_id":"AVG-1084","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1084"},{"reference_url":"https://security.archlinux.org/AVG-1086","reference_id":"AVG-1086","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1086"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-01","reference_id":"mfsa2020-01","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-02","reference_id":"mfsa2020-02","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-02"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-04","reference_id":"mfsa2020-04","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2020-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0085","reference_id":"RHSA-2020:0085","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0085"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0086","reference_id":"RHSA-2020:0086","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0086"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0111","reference_id":"RHSA-2020:0111","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0111"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0120","reference_id":"RHSA-2020:0120","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0120"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0123","reference_id":"RHSA-2020:0123","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0123"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0127","reference_id":"RHSA-2020:0127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0127"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0292","reference_id":"RHSA-2020:0292","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0292"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0295","reference_id":"RHSA-2020:0295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0295"},{"reference_url":"https://usn.ubuntu.com/4234-1/","reference_id":"USN-4234-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4234-1/"},{"reference_url":"https://usn.ubuntu.com/4241-1/","reference_id":"USN-4241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8905?format=json","purl":"pkg:alpm/archlinux/firefox@72.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q4z-muc6-m7a8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@72.0-1"}],"aliases":["CVE-2019-17022"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wh6x-a39q-5kh9"}],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6553?format=json","vulnerability_id":"VCID-1psr-v1vg-wfdb","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17005.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17005.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17005","reference_id":"","reference_type":"","scores":[{"value":"0.02469","scoring_system":"epss","scoring_elements":"0.85641","published_at":"2026-06-12T12:55:00Z"},{"value":"0.02469","scoring_system":"epss","scoring_elements":"0.8559","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17005"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1779435","reference_id":"1779435","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1779435"},{"reference_url":"https://security.archlinux.org/ASA-201912-1","reference_id":"ASA-201912-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201912-1"},{"reference_url":"https://security.archlinux.org/ASA-201912-2","reference_id":"ASA-201912-2","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201912-2"},{"reference_url":"https://security.archlinux.org/AVG-1071","reference_id":"AVG-1071","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1071"},{"reference_url":"https://security.archlinux.org/AVG-1072","reference_id":"AVG-1072","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1072"},{"reference_url":"https://security.gentoo.org/glsa/202003-10","reference_id":"GLSA-202003-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-10"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36","reference_id":"mfsa2019-36","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-37","reference_id":"mfsa2019-37","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-37"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-38","reference_id":"mfsa2019-38","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-38"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4107","reference_id":"RHSA-2019:4107","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4107"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4108","reference_id":"RHSA-2019:4108","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4108"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4111","reference_id":"RHSA-2019:4111","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4111"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4148","reference_id":"RHSA-2019:4148","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4148"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4195","reference_id":"RHSA-2019:4195","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4195"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4205","reference_id":"RHSA-2019:4205","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4205"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0292","reference_id":"RHSA-2020:0292","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0292"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0295","reference_id":"RHSA-2020:0295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0295"},{"reference_url":"https://usn.ubuntu.com/4216-1/","reference_id":"USN-4216-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-1/"},{"reference_url":"https://usn.ubuntu.com/4216-2/","reference_id":"USN-4216-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-2/"},{"reference_url":"https://usn.ubuntu.com/4241-1/","reference_id":"USN-4241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8907?format=json","purl":"pkg:alpm/archlinux/firefox@71.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4xup-j64d-v3h6"},{"vulnerability":"VCID-6tma-11p7-bfg2"},{"vulnerability":"VCID-dn29-b195-4kc7"},{"vulnerability":"VCID-fcbc-ub4t-zua6"},{"vulnerability":"VCID-fch6-wjz9-7qgc"},{"vulnerability":"VCID-tq7s-6xrx-b3at"},{"vulnerability":"VCID-wh6x-a39q-5kh9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1"}],"aliases":["CVE-2019-17005"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1psr-v1vg-wfdb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6558?format=json","vulnerability_id":"VCID-2szh-p5sx-zuaj","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17010.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17010.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17010","reference_id":"","reference_type":"","scores":[{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.789","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.78835","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17010"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1779434","reference_id":"1779434","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1779434"},{"reference_url":"https://security.archlinux.org/ASA-201912-1","reference_id":"ASA-201912-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201912-1"},{"reference_url":"https://security.archlinux.org/ASA-201912-2","reference_id":"ASA-201912-2","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201912-2"},{"reference_url":"https://security.archlinux.org/AVG-1071","reference_id":"AVG-1071","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1071"},{"reference_url":"https://security.archlinux.org/AVG-1072","reference_id":"AVG-1072","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1072"},{"reference_url":"https://security.gentoo.org/glsa/202003-10","reference_id":"GLSA-202003-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-10"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36","reference_id":"mfsa2019-36","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-37","reference_id":"mfsa2019-37","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-37"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-38","reference_id":"mfsa2019-38","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-38"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4107","reference_id":"RHSA-2019:4107","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4107"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4108","reference_id":"RHSA-2019:4108","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4108"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4111","reference_id":"RHSA-2019:4111","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4111"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4148","reference_id":"RHSA-2019:4148","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4148"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4195","reference_id":"RHSA-2019:4195","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4195"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4205","reference_id":"RHSA-2019:4205","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4205"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0292","reference_id":"RHSA-2020:0292","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0292"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0295","reference_id":"RHSA-2020:0295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0295"},{"reference_url":"https://usn.ubuntu.com/4216-1/","reference_id":"USN-4216-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-1/"},{"reference_url":"https://usn.ubuntu.com/4216-2/","reference_id":"USN-4216-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-2/"},{"reference_url":"https://usn.ubuntu.com/4241-1/","reference_id":"USN-4241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8907?format=json","purl":"pkg:alpm/archlinux/firefox@71.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4xup-j64d-v3h6"},{"vulnerability":"VCID-6tma-11p7-bfg2"},{"vulnerability":"VCID-dn29-b195-4kc7"},{"vulnerability":"VCID-fcbc-ub4t-zua6"},{"vulnerability":"VCID-fch6-wjz9-7qgc"},{"vulnerability":"VCID-tq7s-6xrx-b3at"},{"vulnerability":"VCID-wh6x-a39q-5kh9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1"}],"aliases":["CVE-2019-17010"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2szh-p5sx-zuaj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6560?format=json","vulnerability_id":"VCID-8jak-ye4j-kqee","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17012.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17012.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17012","reference_id":"","reference_type":"","scores":[{"value":"0.0185","scoring_system":"epss","scoring_elements":"0.83475","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0185","scoring_system":"epss","scoring_elements":"0.83415","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17012"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1779437","reference_id":"1779437","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1779437"},{"reference_url":"https://security.archlinux.org/ASA-201912-1","reference_id":"ASA-201912-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201912-1"},{"reference_url":"https://security.archlinux.org/ASA-201912-2","reference_id":"ASA-201912-2","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201912-2"},{"reference_url":"https://security.archlinux.org/AVG-1071","reference_id":"AVG-1071","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1071"},{"reference_url":"https://security.archlinux.org/AVG-1072","reference_id":"AVG-1072","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1072"},{"reference_url":"https://security.gentoo.org/glsa/202003-10","reference_id":"GLSA-202003-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-10"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36","reference_id":"mfsa2019-36","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-37","reference_id":"mfsa2019-37","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-37"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-38","reference_id":"mfsa2019-38","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-38"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4107","reference_id":"RHSA-2019:4107","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4107"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4108","reference_id":"RHSA-2019:4108","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4108"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4111","reference_id":"RHSA-2019:4111","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4111"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4148","reference_id":"RHSA-2019:4148","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4148"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4195","reference_id":"RHSA-2019:4195","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4195"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4205","reference_id":"RHSA-2019:4205","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4205"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0292","reference_id":"RHSA-2020:0292","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0292"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0295","reference_id":"RHSA-2020:0295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0295"},{"reference_url":"https://usn.ubuntu.com/4216-1/","reference_id":"USN-4216-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-1/"},{"reference_url":"https://usn.ubuntu.com/4216-2/","reference_id":"USN-4216-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-2/"},{"reference_url":"https://usn.ubuntu.com/4241-1/","reference_id":"USN-4241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8907?format=json","purl":"pkg:alpm/archlinux/firefox@71.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4xup-j64d-v3h6"},{"vulnerability":"VCID-6tma-11p7-bfg2"},{"vulnerability":"VCID-dn29-b195-4kc7"},{"vulnerability":"VCID-fcbc-ub4t-zua6"},{"vulnerability":"VCID-fch6-wjz9-7qgc"},{"vulnerability":"VCID-tq7s-6xrx-b3at"},{"vulnerability":"VCID-wh6x-a39q-5kh9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1"}],"aliases":["CVE-2019-17012"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8jak-ye4j-kqee"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6128?format=json","vulnerability_id":"VCID-abh1-ag45-e7aj","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11745.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11745.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-11745","reference_id":"","reference_type":"","scores":[{"value":"0.00939","scoring_system":"epss","scoring_elements":"0.76733","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00939","scoring_system":"epss","scoring_elements":"0.76664","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-11745"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11745","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11745"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17007","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17007"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1774831","reference_id":"1774831","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1774831"},{"reference_url":"https://security.archlinux.org/ASA-201912-1","reference_id":"ASA-201912-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201912-1"},{"reference_url":"https://security.archlinux.org/ASA-201912-2","reference_id":"ASA-201912-2","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201912-2"},{"reference_url":"https://security.archlinux.org/AVG-1071","reference_id":"AVG-1071","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1071"},{"reference_url":"https://security.archlinux.org/AVG-1072","reference_id":"AVG-1072","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1072"},{"reference_url":"https://security.gentoo.org/glsa/202003-10","reference_id":"GLSA-202003-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-10"},{"reference_url":"https://security.gentoo.org/glsa/202003-37","reference_id":"GLSA-202003-37","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-37"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36","reference_id":"mfsa2019-36","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-37","reference_id":"mfsa2019-37","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-37"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-38","reference_id":"mfsa2019-38","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-38"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4114","reference_id":"RHSA-2019:4114","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4114"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4152","reference_id":"RHSA-2019:4152","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4152"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4190","reference_id":"RHSA-2019:4190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0243","reference_id":"RHSA-2020:0243","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0243"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0466","reference_id":"RHSA-2020:0466","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0466"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1267","reference_id":"RHSA-2020:1267","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1267"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1345","reference_id":"RHSA-2020:1345","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1345"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1461","reference_id":"RHSA-2020:1461","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1461"},{"reference_url":"https://usn.ubuntu.com/4203-1/","reference_id":"USN-4203-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4203-1/"},{"reference_url":"https://usn.ubuntu.com/4203-2/","reference_id":"USN-4203-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4203-2/"},{"reference_url":"https://usn.ubuntu.com/4216-1/","reference_id":"USN-4216-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-1/"},{"reference_url":"https://usn.ubuntu.com/4216-2/","reference_id":"USN-4216-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-2/"},{"reference_url":"https://usn.ubuntu.com/4241-1/","reference_id":"USN-4241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8907?format=json","purl":"pkg:alpm/archlinux/firefox@71.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4xup-j64d-v3h6"},{"vulnerability":"VCID-6tma-11p7-bfg2"},{"vulnerability":"VCID-dn29-b195-4kc7"},{"vulnerability":"VCID-fcbc-ub4t-zua6"},{"vulnerability":"VCID-fch6-wjz9-7qgc"},{"vulnerability":"VCID-tq7s-6xrx-b3at"},{"vulnerability":"VCID-wh6x-a39q-5kh9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1"}],"aliases":["CVE-2019-11745"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-abh1-ag45-e7aj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/196903?format=json","vulnerability_id":"VCID-cq84-ngdb-q7dd","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17013.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17013.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17013","reference_id":"","reference_type":"","scores":[{"value":"0.00401","scoring_system":"epss","scoring_elements":"0.61201","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00401","scoring_system":"epss","scoring_elements":"0.61307","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17013"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1779441","reference_id":"1779441","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1779441"},{"reference_url":"https://security.archlinux.org/ASA-201912-1","reference_id":"ASA-201912-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201912-1"},{"reference_url":"https://security.archlinux.org/AVG-1071","reference_id":"AVG-1071","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1071"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36","reference_id":"mfsa2019-36","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36"},{"reference_url":"https://usn.ubuntu.com/4216-1/","reference_id":"USN-4216-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-1/"},{"reference_url":"https://usn.ubuntu.com/4216-2/","reference_id":"USN-4216-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8907?format=json","purl":"pkg:alpm/archlinux/firefox@71.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4xup-j64d-v3h6"},{"vulnerability":"VCID-6tma-11p7-bfg2"},{"vulnerability":"VCID-dn29-b195-4kc7"},{"vulnerability":"VCID-fcbc-ub4t-zua6"},{"vulnerability":"VCID-fch6-wjz9-7qgc"},{"vulnerability":"VCID-tq7s-6xrx-b3at"},{"vulnerability":"VCID-wh6x-a39q-5kh9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1"}],"aliases":["CVE-2019-17013"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cq84-ngdb-q7dd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/196904?format=json","vulnerability_id":"VCID-g54k-34az-g7ca","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11756.json","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11756.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-11756","reference_id":"","reference_type":"","scores":[{"value":"0.00406","scoring_system":"epss","scoring_elements":"0.61502","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00406","scoring_system":"epss","scoring_elements":"0.61605","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-11756"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1774835","reference_id":"1774835","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1774835"},{"reference_url":"https://security.archlinux.org/ASA-201912-1","reference_id":"ASA-201912-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201912-1"},{"reference_url":"https://security.archlinux.org/AVG-1071","reference_id":"AVG-1071","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1071"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36","reference_id":"mfsa2019-36","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3280","reference_id":"RHSA-2020:3280","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3280"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4076","reference_id":"RHSA-2020:4076","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4076"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0758","reference_id":"RHSA-2021:0758","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0758"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0876","reference_id":"RHSA-2021:0876","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0876"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0949","reference_id":"RHSA-2021:0949","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0949"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1026","reference_id":"RHSA-2021:1026","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1026"},{"reference_url":"https://usn.ubuntu.com/4216-1/","reference_id":"USN-4216-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-1/"},{"reference_url":"https://usn.ubuntu.com/4216-2/","reference_id":"USN-4216-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8907?format=json","purl":"pkg:alpm/archlinux/firefox@71.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4xup-j64d-v3h6"},{"vulnerability":"VCID-6tma-11p7-bfg2"},{"vulnerability":"VCID-dn29-b195-4kc7"},{"vulnerability":"VCID-fcbc-ub4t-zua6"},{"vulnerability":"VCID-fch6-wjz9-7qgc"},{"vulnerability":"VCID-tq7s-6xrx-b3at"},{"vulnerability":"VCID-wh6x-a39q-5kh9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1"}],"aliases":["CVE-2019-11756"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g54k-34az-g7ca"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6559?format=json","vulnerability_id":"VCID-hbvx-za4z-d3d7","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17011.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17011.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17011","reference_id":"","reference_type":"","scores":[{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.789","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.78835","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17011"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1779436","reference_id":"1779436","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1779436"},{"reference_url":"https://security.archlinux.org/ASA-201912-1","reference_id":"ASA-201912-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201912-1"},{"reference_url":"https://security.archlinux.org/ASA-201912-2","reference_id":"ASA-201912-2","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201912-2"},{"reference_url":"https://security.archlinux.org/AVG-1071","reference_id":"AVG-1071","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1071"},{"reference_url":"https://security.archlinux.org/AVG-1072","reference_id":"AVG-1072","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1072"},{"reference_url":"https://security.gentoo.org/glsa/202003-10","reference_id":"GLSA-202003-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-10"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36","reference_id":"mfsa2019-36","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-37","reference_id":"mfsa2019-37","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-37"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-38","reference_id":"mfsa2019-38","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-38"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4107","reference_id":"RHSA-2019:4107","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4107"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4108","reference_id":"RHSA-2019:4108","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4108"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4111","reference_id":"RHSA-2019:4111","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4111"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4148","reference_id":"RHSA-2019:4148","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4148"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4195","reference_id":"RHSA-2019:4195","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4195"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4205","reference_id":"RHSA-2019:4205","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4205"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0292","reference_id":"RHSA-2020:0292","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0292"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0295","reference_id":"RHSA-2020:0295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0295"},{"reference_url":"https://usn.ubuntu.com/4216-1/","reference_id":"USN-4216-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-1/"},{"reference_url":"https://usn.ubuntu.com/4216-2/","reference_id":"USN-4216-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-2/"},{"reference_url":"https://usn.ubuntu.com/4241-1/","reference_id":"USN-4241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8907?format=json","purl":"pkg:alpm/archlinux/firefox@71.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4xup-j64d-v3h6"},{"vulnerability":"VCID-6tma-11p7-bfg2"},{"vulnerability":"VCID-dn29-b195-4kc7"},{"vulnerability":"VCID-fcbc-ub4t-zua6"},{"vulnerability":"VCID-fch6-wjz9-7qgc"},{"vulnerability":"VCID-tq7s-6xrx-b3at"},{"vulnerability":"VCID-wh6x-a39q-5kh9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1"}],"aliases":["CVE-2019-17011"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hbvx-za4z-d3d7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6556?format=json","vulnerability_id":"VCID-kcq4-kjtr-cbcx","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17008.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17008.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17008","reference_id":"","reference_type":"","scores":[{"value":"0.00866","scoring_system":"epss","scoring_elements":"0.75636","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00866","scoring_system":"epss","scoring_elements":"0.75565","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1779431","reference_id":"1779431","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1779431"},{"reference_url":"https://security.archlinux.org/ASA-201912-1","reference_id":"ASA-201912-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201912-1"},{"reference_url":"https://security.archlinux.org/ASA-201912-2","reference_id":"ASA-201912-2","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201912-2"},{"reference_url":"https://security.archlinux.org/AVG-1071","reference_id":"AVG-1071","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1071"},{"reference_url":"https://security.archlinux.org/AVG-1072","reference_id":"AVG-1072","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1072"},{"reference_url":"https://security.gentoo.org/glsa/202003-10","reference_id":"GLSA-202003-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-10"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36","reference_id":"mfsa2019-36","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-37","reference_id":"mfsa2019-37","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-37"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-38","reference_id":"mfsa2019-38","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-38"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4107","reference_id":"RHSA-2019:4107","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4107"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4108","reference_id":"RHSA-2019:4108","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4108"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4111","reference_id":"RHSA-2019:4111","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4111"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4148","reference_id":"RHSA-2019:4148","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4148"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4195","reference_id":"RHSA-2019:4195","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4195"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4205","reference_id":"RHSA-2019:4205","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:4205"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0292","reference_id":"RHSA-2020:0292","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0292"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0295","reference_id":"RHSA-2020:0295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0295"},{"reference_url":"https://usn.ubuntu.com/4216-1/","reference_id":"USN-4216-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-1/"},{"reference_url":"https://usn.ubuntu.com/4216-2/","reference_id":"USN-4216-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-2/"},{"reference_url":"https://usn.ubuntu.com/4241-1/","reference_id":"USN-4241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8907?format=json","purl":"pkg:alpm/archlinux/firefox@71.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4xup-j64d-v3h6"},{"vulnerability":"VCID-6tma-11p7-bfg2"},{"vulnerability":"VCID-dn29-b195-4kc7"},{"vulnerability":"VCID-fcbc-ub4t-zua6"},{"vulnerability":"VCID-fch6-wjz9-7qgc"},{"vulnerability":"VCID-tq7s-6xrx-b3at"},{"vulnerability":"VCID-wh6x-a39q-5kh9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1"}],"aliases":["CVE-2019-17008"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kcq4-kjtr-cbcx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/196902?format=json","vulnerability_id":"VCID-vngq-uv88-rbdd","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17014.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17014.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17014","reference_id":"","reference_type":"","scores":[{"value":"0.00367","scoring_system":"epss","scoring_elements":"0.59063","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00367","scoring_system":"epss","scoring_elements":"0.59176","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17014"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1779440","reference_id":"1779440","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1779440"},{"reference_url":"https://security.archlinux.org/ASA-201912-1","reference_id":"ASA-201912-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201912-1"},{"reference_url":"https://security.archlinux.org/AVG-1071","reference_id":"AVG-1071","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1071"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36","reference_id":"mfsa2019-36","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36"},{"reference_url":"https://usn.ubuntu.com/4216-1/","reference_id":"USN-4216-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-1/"},{"reference_url":"https://usn.ubuntu.com/4216-2/","reference_id":"USN-4216-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4216-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8907?format=json","purl":"pkg:alpm/archlinux/firefox@71.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4xup-j64d-v3h6"},{"vulnerability":"VCID-6tma-11p7-bfg2"},{"vulnerability":"VCID-dn29-b195-4kc7"},{"vulnerability":"VCID-fcbc-ub4t-zua6"},{"vulnerability":"VCID-fch6-wjz9-7qgc"},{"vulnerability":"VCID-tq7s-6xrx-b3at"},{"vulnerability":"VCID-wh6x-a39q-5kh9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1"}],"aliases":["CVE-2019-17014"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vngq-uv88-rbdd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6557?format=json","vulnerability_id":"VCID-zm7u-xw4t-yugz","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17009.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17009.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17009","reference_id":"","reference_type":"","scores":[{"value":"0.00136","scoring_system":"epss","scoring_elements":"0.33441","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00136","scoring_system":"epss","scoring_elements":"0.33259","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-17009"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1779433","reference_id":"1779433","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1779433"},{"reference_url":"https://security.archlinux.org/ASA-201912-1","reference_id":"ASA-201912-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201912-1"},{"reference_url":"https://security.archlinux.org/AVG-1071","reference_id":"AVG-1071","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1071"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36","reference_id":"mfsa2019-36","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-36"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-37","reference_id":"mfsa2019-37","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-37"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-38","reference_id":"mfsa2019-38","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2019-38"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8907?format=json","purl":"pkg:alpm/archlinux/firefox@71.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4xup-j64d-v3h6"},{"vulnerability":"VCID-6tma-11p7-bfg2"},{"vulnerability":"VCID-dn29-b195-4kc7"},{"vulnerability":"VCID-fcbc-ub4t-zua6"},{"vulnerability":"VCID-fch6-wjz9-7qgc"},{"vulnerability":"VCID-tq7s-6xrx-b3at"},{"vulnerability":"VCID-wh6x-a39q-5kh9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1"}],"aliases":["CVE-2019-17009"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zm7u-xw4t-yugz"}],"risk_score":"4.5","resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1"}